[Olsr-dev] hardening 1by1: -Wformat -Wformat-security -Werror=format-security
Hans-Christoph Steiner
(spam-protected)
Fri Oct 5 23:34:42 CEST 2012
As part of the effort to get the hardening flags that are default in
Debian to be also default in olsrd, I'm submitting one email per concept
so we can discuss them each.
The first is "-Wformat -Wformat-security -Werror=format-security". This
adds strict checks to *printf() formats, which are a common source of
exploits. olsrd currently passes all of these checks.
This should be enabled on all platforms.
Here's the Debian docs on the topic:
http://wiki.debian.org/Hardening#DEB_BUILD_HARDENING_FORMAT_.28gcc.2BAC8-g.2B-.2B-_-Wformat_-Wformat-security_-Werror.3Dformat-security.29
.hc
More information about the Olsr-dev
mailing list